Boletines de Vulnerabilidades

Kubernetes Security Issues (CVE-2019-1002101 and CVE-2019-9946)

Información sobre el sistema
   
Software afectado AmazonWS

Descripción
March 28, 2019 10:00AM PDT AWS is aware of two recently disclosed security issues in Kubernetes (CVE-2019-1002101 and CVE-2019-9946). With the exception of the AWS services listed below, no customer action is required to address these issues. Amazon Elastic Container Service for Kubernetes (EKS) Amazon EKSs managed Kubernetes control plane is not impacted by these security issues. An updated Amazon EKS-optimized AMI is now available. Customers should replace existing worker nodes with the new

More info:

https://aws.amazon.com/security/security-bulletins/AWS-2019-003/

Identificadores estándar
Propiedad Valor
CVE CVE-2019-1002101 and CVE-2019-9946.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2019-03-29

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT